Finished Google CTF 2021 at #13 with 🛹🐻 GG to everyone involved! crypto writeups (all challenges): jsur.in/posts/2021-07-…

I've written some challenges this year. Make sure you check DUCTF out! =)

Just learned you can exploit blind file-reads in PHP by combining the dechunk filter with the PHP memory limit. This crazy finding by hashkitten is a great reminder to pay attention to CTF writeups! github.com/DownUnderCTF/C…

Did you enjoy the latest blogpost on PHP filter chains? Well, our ninja Remsio strikes again with a new article detailing how you can abuse them to leak files from the targeted system, as well as a freshly developed tool to exploit it! synacktiv.com/publications/p…

I've written another set of challenges this year and I'm really happy with how they turned out. Make sure you check out DUCTF this weekend :)

At Assetnote, we published our research on Magento's pre-authentication XXE (CVE-2024-34102). hashkitten and I reproduced this issue together. It is a brilliant vulnerability originally found by Sergey Temnikov. You can read our research here: assetnote.io/resources/rese…

Our security researcher hashkitten found one of the most critical exploit chains in the history of Assetnote. Affecting 40k+ instances of ServiceNow, we could execute arbitrary code, access all data without authentication. You can read our blog here: assetnote.io/resources/rese…

We discovered a pre-authentication RCE vulnerability in Craft CMS caused by an obscure PHP foot gun (CVE-2024-56145), approx 150k sites created with Craft CMS. You can read @Assetnote's Security Research team's blog on the issue: assetnote.io/resources/rese… #attacksurfacemanagement

To kick off our Christmas and July research posts, we explain how we achieved persistent XSS on every Adobe Experience Manager Cloud instance, not twice, but thrice! This is now patched across all of AEM cloud, but what an interesting attack surface! slcyber.io/assetnote-secu…

Pre-auth bugs in enterprise software? Yes please. hashkitten takes us inside their research on Adobe Experience Manager—uncovering critical, pre-auth vulnerabilities in a platform powering 45,000+ sites. Live at BSides Canberra 2025: cfp.bsidescbr.com.au/bsides-canberr…

This month's Christmas in July release from Searchlight Cyber's Security Research team is a pre-authentication RCE vulnerability in Sawtooth Lighthouse Studio (CVE-2025-34300). This software is prevalent and hidden in plain sight. Read more on our blog: slcyber.io/assetnote-secu…

Turns out my #PHRACK article is live! 🔥 > The Art of PHP — My CTF Journey and Untold Stories! Kinda a love letter to those CTF players & PHP nerds! Hope all the credit goes to the right ppl. Also huge thanks to [email protected] for not forgetting me, TMZ for the edits, and the

LET'S GET THE BALL (BEARINGS) ROLLING ONLY 4 WEEKS LEFT UNTIL SKATEBOARDING DOG CTF BSidesCanberra 2025 WATCH THE COUNTDOWN ON OUR WEBSITE: 2025.sk8.dog

Two weeks ago, I did my first (in-person) HackerOne LHE in Singapore! I worked with hashkitten and shubs, and I'm really happy with how it went and what we found :D (We won the Best Team and Best Bug awards! 🔥) It was an amazing event, thanks HackerOne! 😁